$ rpki-client -vvf rpki-rsync.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa File: 323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa (raw, json) Hash identifier: 5fm1VV66aIhuu/oPeZZw27kiviKlDXlW5aL6SC7t08E= Subject key identifier: C1:CF:2C:82:EE:70:25:79:B4:EA:8E:0F:17:DD:EC:88:57:2E:EC:07 Certificate issuer: /CN=B31DF635793A74C7DF5A8E3E59FE1D8F3907428B Certificate serial: 0C8387FAC79611EADEB2A1B05FFAEDAB56E81CFD Authority key identifier: B3:1D:F6:35:79:3A:74:C7:DF:5A:8E:3E:59:FE:1D:8F:39:07:42:8B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B31DF635793A74C7DF5A8E3E59FE1D8F3907428B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa Signing time: Sun 03 May 2026 02:10:12 +0000 ROA not before: Sun 03 May 2026 02:05:12 +0000 ROA not after: Sun 02 May 2027 02:10:12 +0000 asID: 133804 IP address blocks: 2001:df1:e400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/B31DF635793A74C7DF5A8E3E59FE1D8F3907428B.crl rsync://rpki-rsync.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/B31DF635793A74C7DF5A8E3E59FE1D8F3907428B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B31DF635793A74C7DF5A8E3E59FE1D8F3907428B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:83:87:fa:c7:96:11:ea:de:b2:a1:b0:5f:fa:ed:ab:56:e8:1c:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B31DF635793A74C7DF5A8E3E59FE1D8F3907428B Validity Not Before: May 3 02:05:12 2026 GMT Not After : May 2 02:10:12 2027 GMT Subject: CN=C1CF2C82EE702579B4EA8E0F17DDEC88572EEC07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bf:9b:bb:e3:a8:14:fb:fc:e3:b4:8b:16:02: 92:3b:f2:7a:fe:53:ee:28:30:9a:6c:0d:7a:3a:b5: 60:2c:37:d3:d3:91:08:ce:db:2c:c1:1c:04:08:75: d6:e4:41:ad:33:41:bf:a6:22:8c:d4:97:74:aa:36: 60:d0:b0:02:58:b7:75:2e:d0:59:42:ae:49:bd:95: 5f:02:5d:91:d8:20:b9:67:df:10:26:84:84:f2:1c: 01:fe:e0:2d:22:0c:74:5a:c8:d1:f2:b5:9a:12:10: a7:0b:c7:eb:c9:ce:fa:7d:17:fb:c8:fd:f0:4d:20: 5e:aa:a6:49:09:5c:b7:a5:76:dc:d0:d9:40:92:70: fd:1d:bd:4d:41:19:d1:d1:22:9f:c4:cd:2b:e1:7e: 29:5b:84:35:10:5f:48:0b:c3:41:bc:a4:54:23:85: 48:19:f8:f2:dd:09:ed:d5:e4:77:71:ed:53:db:9d: e8:77:6d:2a:45:0f:d3:b3:14:67:d0:a5:aa:79:ae: 85:b5:25:ad:c2:9b:2d:81:97:c2:e4:e3:96:28:82: 1c:0a:20:b1:0f:36:4d:7d:97:61:73:3f:79:bc:df: d3:8c:da:77:e0:38:60:b4:79:00:c5:28:a0:a9:0b: a5:95:ac:5d:5c:71:ed:8b:3d:bb:81:e7:f8:5a:23: 2b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CF:2C:82:EE:70:25:79:B4:EA:8E:0F:17:DD:EC:88:57:2E:EC:07 X509v3 Authority Key Identifier: keyid:B3:1D:F6:35:79:3A:74:C7:DF:5A:8E:3E:59:FE:1D:8F:39:07:42:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/B31DF635793A74C7DF5A8E3E59FE1D8F3907428B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B31DF635793A74C7DF5A8E3E59FE1D8F3907428B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:e400::/48 Signature Algorithm: sha256WithRSAEncryption 64:ec:d1:7f:ba:a2:7c:bc:8e:36:ed:be:b3:74:e5:c5:0d:8b: 28:fa:4c:a2:26:59:32:b4:c2:55:55:17:88:40:00:09:02:25: 81:10:fa:93:bd:5e:e4:1a:b0:d0:2b:75:12:ba:66:ef:55:30: 02:b3:e4:f9:1b:89:bc:19:10:bc:83:a0:b0:83:42:4f:45:69: d8:a2:ae:45:4d:11:b9:cd:10:16:09:cb:b1:ff:71:ab:74:ba: c0:7c:cc:64:f3:11:20:25:50:61:5a:82:e6:71:c0:4a:b6:cf: 56:c4:4e:f1:fb:11:90:94:72:e2:63:19:c3:02:06:55:f3:93: e2:53:2c:a4:ab:14:b7:0d:a0:70:f9:e4:3d:e9:47:e4:35:54: d6:72:a4:83:7c:4e:8f:3f:88:10:66:5b:ed:2d:e7:47:ae:35: e0:a4:e0:16:f8:9a:82:ed:20:d2:e9:fb:78:a1:64:a2:fc:59: 77:7c:de:a1:bf:27:a9:02:7b:24:ea:9f:6e:a5:dc:fc:c4:a2: 84:17:93:dc:6f:44:ba:3d:cd:a8:61:d1:a0:a9:0a:dc:9a:8b: a0:a3:e1:b2:7d:fc:a0:2f:0c:3c:f5:c0:4c:27:e7:91:f0:75: f9:22:da:81:78:85:9c:69:30:1c:19:5b:e0:ca:3c:e5:fe:a6: d3:f4:fb:9c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDIOH+seWEeresqGwX/rtq1boHP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjMxREY2MzU3OTNBNzRDN0RGNUE4RTNFNTlGRTFEOEYz OTA3NDI4QjAeFw0yNjA1MDMwMjA1MTJaFw0yNzA1MDIwMjEwMTJaMDMxMTAvBgNV BAMTKEMxQ0YyQzgyRUU3MDI1NzlCNEVBOEUwRjE3RERFQzg4NTcyRUVDMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxv5u746gU+/zjtIsWApI78nr+ U+4oMJpsDXo6tWAsN9PTkQjO2yzBHAQIddbkQa0zQb+mIozUl3SqNmDQsAJYt3Uu 0FlCrkm9lV8CXZHYILln3xAmhITyHAH+4C0iDHRayNHytZoSEKcLx+vJzvp9F/vI /fBNIF6qpkkJXLeldtzQ2UCScP0dvU1BGdHRIp/EzSvhfilbhDUQX0gLw0G8pFQj hUgZ+PLdCe3V5Hdx7VPbneh3bSpFD9OzFGfQpap5roW1Ja3Cmy2Bl8Lk45YoghwK ILEPNk19l2FzP3m839OM2nfgOGC0eQDFKKCpC6WVrF1cce2LPbuB5/haIyvtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUwc8sgu5wJXm06o4PF93siFcu7AcwHwYDVR0j BBgwFoAUsx32NXk6dMffWo4+Wf4djzkHQoswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDIyMWFkNjctZDM1Yy00NTU5LTlhNzMtN2M3NGY1MGRjZmZhLzAvQjMxREY2MzU3 OTNBNzRDN0RGNUE4RTNFNTlGRTFEOEYzOTA3NDI4Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMzFERjYzNTc5M0E3NEM3REY1QThFM0U1OUZFMUQ4RjM5MDc0 MjhCLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzAyMjFhZDY3LWQzNWMtNDU1OS05 YTczLTdjNzRmNTBkY2ZmYS8wLzMyMzAzMDMxM2E2NDY2MzEzYTY1MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8eQAMA0GCSqGSIb3DQEBCwUAA4IBAQBk7NF/uqJ8vI427b6zdOXFDYso+kyiJlky tMJVVReIQAAJAiWBEPqTvV7kGrDQK3USumbvVTACs+T5G4m8GRC8g6Cwg0JPRWnY oq5FTRG5zRAWCcux/3GrdLrAfMxk8xEgJVBhWoLmccBKts9WxE7x+xGQlHLiYxnD AgZV85PiUyykqxS3DaBw+eQ96UfkNVTWcqSDfE6PP4gQZlvtLedHrjXgpOAW+JqC 7SDS6ft4oWSi/Fl3fN6hvyepAnsk6p9updz8xKKEF5Pcb0S6Pc2oYdGgqQrcmoug o+GyffygLww89cBMJ+eR8HX5ItqBeIWcaTAcGVvgyjzl/qbT9Puc -----END CERTIFICATE-----Generated at Wed May 13 12:41:01 2026 by rpki-client